Risk-driven architectural decomposition
Proceedings - International Conference on Availability, Reliability and Security, ARES 2009: 5066495, 363-368 (2009-10-12)
Contribution to Conference
Architectural modelling and risk management are invaluable to increase the security of a software system. The purpose of this work is to show how both approaches can be integrated in a risk-aware architectural modelling technique. As the modelling is formal, the approach offers stronger guarantees that the resulting architecture achieves its security requirements.